Yadda ake Sanyawa da Sanya Kayan Aikin Automation Mai Haɓaka don Gudanar da IT - Kashi na 1

Mai yiwuwa buɗaɗɗen tushe ne, software mai ƙarfi mai sarrafa kansa don daidaitawa, sarrafawa da tura aikace-aikacen software akan nodes ba tare da wani lokaci ba ta amfani da SSH kawai. A yau, yawancin kayan aikin IT Automation suna gudana azaman wakili a cikin mai watsa shiri mai nisa, amma mai yiwuwa kawai suna buƙatar haɗin SSH da Python (2.4 ko daga baya) don shigar da su akan nodes masu nisa don aiwatar da aikin.

Akwai makamantan kayan aikin sarrafa kansa da yawa kamar su Puppet, Capistrano, Chef, Salt, Space Walk da dai sauransu, amma Mai yiwuwa a kasasu zuwa nau'ikan uwar garken guda biyu: sarrafa injina da nodes.

Na'ura mai sarrafawa, inda aka shigar da Ansible kuma ana sarrafa Nodes ta wannan na'ura mai sarrafawa akan SSH. An ƙayyade wurin nodes ta hanyar sarrafa injin ta cikin kayan sa.

Na'ura mai sarrafawa (Mai yiwuwa) tana tura kayayyaki zuwa nodes ta amfani da ka'idar SSH kuma ana adana waɗannan nau'ikan na ɗan lokaci akan nodes masu nisa kuma suna sadarwa tare da na'ura mai yiwuwa ta hanyar haɗin JSON akan daidaitaccen fitarwa.

Mai yiwuwa ba shi da ƙarancin wakili, wannan yana nufin babu buƙatar shigarwar kowane wakili a kan nodes masu nisa, don haka yana nufin babu wani bayanan baya ko shirye-shiryen da ke aiwatarwa don Mai yiwuwa, lokacin da ba ya sarrafa kowane nodes.

Mai yiwuwa na iya ɗaukar 100 na nodes daga tsarin guda ɗaya akan haɗin SSH kuma ana iya sarrafa duka aikin da aiwatar da umarni ɗaya 'mai yiwuwa'. Amma, a wasu lokuta, inda kuka buƙaci aiwatar da umarni da yawa don turawa, a nan za mu iya gina littattafan wasan kwaikwayo.

Littattafan wasa gungun umarni ne waɗanda zasu iya yin ayyuka da yawa kuma kowane littattafan wasan kwaikwayo suna cikin tsarin fayil ɗin YAML.

Ana iya amfani da mai yiwuwa a cikin kayan aikin IT don sarrafawa da tura aikace-aikacen software zuwa nodes masu nisa. Misali, bari mu ce kana bukatar ka tura manhaja guda daya ko manhaja da yawa zuwa nodes 100 ta hanyar umarni daya, a nan mai yiwuwa ya zo cikin hoto, tare da taimakon Ansible zaka iya tura adadin aikace-aikacen zuwa nodes da yawa tare da umarni guda ɗaya. amma dole ne ku sami ɗan ilimin shirye-shirye don fahimtar rubutun da za ku iya.

Mun tattara jerin abubuwa akan Mai yiwuwa, taken 'Shiri don Aiwatar da Kayan Aikin IT ɗinku tare da Kayan Aikin Automation Mai Imani', ta hanyar sassa 1-4 kuma ya rufe batutuwa masu zuwa.

A cikin wannan labarin, za mu nuna muku yadda ake shigar da 'Mai yiwuwa' akan RHEL/CentOS 7/6, Fedora 21-19, Ubuntu 14.10-13.04 da kuma tsarin Debian 7/6 sannan kuma za mu bi wasu mahimman bayanai kan yadda ake sarrafa su. uwar garken ta hanyar shigar da fakiti, amfani da sabuntawa da ƙari mai yawa daga asali zuwa pro.

  1. Tsarin Aiki: RHEL/CentOS/Fedora da Ubuntu/Debian/Linux Mint
  2. Jinja2: Na zamani, mai sauri da sauƙi don amfani da injin samfuri na Python.
  3. PyYAML: A YAML parser and emitter for the Python programming language.
  4. parmiko: Laburaren tashar tashoshi na Python SSHv2.
  5. httplib2: Cikakken ɗakin karatu na abokin ciniki na HTTP.
  6. sshpass: ssh kalmar sirri mara ma'amala.

Operating System :	Linux Mint 17.1 Rebecca
IP Address	 :	192.168.0.254
Host-name	 :	tecmint.instrcutor.com
User		 :	tecmint

Node 1: 192.168.0.112
Node 2: 192.168.0.113
Node 3: 192.168.0.114

Mataki 1: Sanya Injin Sarrafa - Mai yiwuwa

1. Kafin shigar da 'Mai yiwuwa' a kan uwar garke, bari mu fara tabbatar da cikakkun bayanai na uwar garken kamar sunan mai masauki da adireshin IP. Shiga cikin uwar garken azaman tushen mai amfani kuma aiwatar da umarnin da ke ƙasa don tabbatar da saitunan tsarin da za mu yi amfani da su don wannan saitin.

# sudo ifconfig | grep inet

2. Da zarar kun tabbatar da saitunan tsarin ku, lokaci ya yi da za ku shigar da software na 'Mai yiwuwa' akan tsarin.

Anan za mu yi amfani da ma'ajin PPA na hukuma akan tsarin, kawai gudanar da umarnin da ke ƙasa don ƙara ma'ajiyar.

$ sudo apt-add-repository ppa:ansible/ansible -y
$ sudo apt-get update && sudo apt-get install ansible -y

Abin takaici, babu wani ma'ajin da zai iya yiwuwa don tushen clones na RedHat, amma zamu iya shigar da Mai yiwuwa ta hanyar kunna ma'ajin epel a ƙarƙashin RHEL/CentOS 6, 7 kuma a halin yanzu ana tallafawa rabon fedora.

Masu amfani da Fedora za su iya shigar da Mai yiwuwa kai tsaye ta wurin ajiyar tsoho, amma idan kana amfani da RHEL/CentOS 6, 7, dole ne ka kunna EPEL repo.

Bayan saita ma'ajin epel, zaku iya shigar da Mai yiwuwa ta amfani da umarni mai zuwa.

$ sudo yum install ansible -y

Bayan shigar cikin nasara, zaku iya tabbatar da sigar ta aiwatar da umarnin da ke ƙasa.

# ansible --version

Mataki 2: Ana Shirya Maɓallan SSH zuwa Runduna Nesa

4. Don yin kowane turawa ko gudanarwa daga localhost zuwa mai watsa shiri mai nisa da farko muna buƙatar ƙirƙira da kwafi maɓallan ssh zuwa mai watsa shiri mai nisa. A cikin kowane mai watsa shiri mai nisa za a sami tecmint asusun mai amfani (a cikin yanayin ku yana iya zama daban-daban mai amfani).

Da farko bari mu ƙirƙiri maɓallin SSH ta amfani da umarnin ƙasa kuma mu kwafi maɓallin zuwa runduna mai nisa.

# ssh-keygen -t rsa -b 4096 -C "[email "

5. Bayan ƙirƙirar SSH Key cikin nasara, yanzu kwafi maɓallin ƙirƙira zuwa duk uwar garken nesa guda uku.

# ssh-copy-id [email 
# ssh-copy-id [email 
# ssh-copy-id [email 

6. Bayan kwafin duk SSH Keys zuwa mai watsa shiri mai nisa, yanzu yi ssh key Tantance kalmar sirri akan duk runduna mai nisa don bincika ko amincin yana aiki ko a'a.

$ ssh [email 
$ ssh [email 
$ ssh [email